summaryrefslogtreecommitdiff
AgeCommit message (Expand)AuthorFilesLines
2013-03-03release 2.2.16-6+squeeze11debian/2.2.16-6+squeeze11Stefan Fritsch1-2/+2
2013-03-03CVE-2013-1048: Fix symlink vulnerability when creating /var/lock/apache2Stefan Fritsch2-1/+27
2013-02-23CVE-2012-3499, CVE-2012-4558: Fix XSS flaws in various modules.Stefan Fritsch3-0/+215
2012-11-30bump version numberdebian/2.2.16-6+squeeze10Stefan Fritsch1-2/+2
2012-11-30put version check after the openssl headers have been includedStefan Fritsch1-14/+14
2012-11-28release 2.2.16-6+squeeze9debian/2.2.16-6+squeeze9Stefan Fritsch1-2/+2
2012-11-01CVE-2012-4557: mod_proxy_ajp: Remote denial of serviceStefan Fritsch3-2/+46
2012-11-01rename patch to keep 2xx numbers for suexecStefan Fritsch2-2/+2
2012-10-29Merge 1400962 from upsteamArno Töll1-1/+1
2012-10-25Backport the SSL compression patch to SqueezeArno Töll1-36/+51
2012-10-22Revert "Disable compression by default"Arno Töll1-5/+0
2012-10-22Disable compression by default, as upstream commit #1400700 did as wellArno Töll1-2/+2
2012-10-20Disable compression by defaultArno Töll1-0/+5
2012-10-20Fix permissions of dpatches to make dpatch happierArno Töll11-0/+0
2012-10-20Backport disable-ssl-compression patch to SqueezeArno Töll3-0/+119
2012-09-09release 2.2.16-6+squeeze8debian/2.2.16-6+squeeze8Stefan Fritsch1-2/+2
2012-09-09mpm_itk: Fix an issue where users can sometimes get spurious 403s onStefan Fritsch3-0/+48
2012-09-08Fix CVE-2012-2687 in mod_negotiationStefan Fritsch3-0/+24
2012-07-28mod_cache: Prevent Partial Content responses from being cached andStefan Fritsch3-0/+77
2012-07-28Send 408 status instead of 400 if reading of a request fails with aStefan Fritsch3-0/+178
2012-04-01CVE-2012-0216: Remove "Alias /doc /usr/share/doc" from the defaultdebian/2.2.16-6+squeeze7Stefan Fritsch3-19/+14
2012-02-05Rebuild as squeeze-security :-(debian/2.2.16-6+squeeze6Stefan Fritsch1-0/+6
2012-02-04release 2.2.16-6+squeeze5debian/2.2.16-6+squeeze5Stefan Fritsch1-2/+2
2012-02-04CVE-2012-0053: Fix an issue in code 400 error responses that couldStefan Fritsch3-0/+108
2012-02-04CVE-2012-0031: Fix client process being able to crash parent processStefan Fritsch3-0/+44
2012-02-04CVE-2011-3607: Fix integer overflow in ap_pregsub()Stefan Fritsch3-0/+55
2012-02-04update fix for CVE-2011-4317Stefan Fritsch1-35/+50
2012-01-02Prevent unintended pattern expansion in some reverse proxyStefan Fritsch5-0/+180
2012-01-022.2.16-6+squeeze4 has been releasedStefan Fritsch1-2/+2
2012-01-02Tweak patch header to fix "dpatch unapply" with unstable's patch/dpatch.Stefan Fritsch2-1/+2
2012-01-02fold in recent security updatesStefan Fritsch4-1/+788
2012-01-02CVE-2011-3348Stefan Fritsch3-1/+24
2012-01-02fold in old 2.2.16-6+squeeze1 security releaseStefan Fritsch2-2/+10
2012-01-02Make it clear in README.multiple-instances that the MPMs are shippedStefan Fritsch2-3/+10
2012-01-02For multiple instance setups, correctly determine the config dir in theStefan Fritsch2-2/+6
2012-01-02Fix typo in init scriptStefan Fritsch2-1/+2
2012-01-02Add hint in README.Debian about how to increase max number of open filesStefan Fritsch2-0/+8
2012-01-02Make exit code of '/etc/init.d/apache2 status' more LSB compatible.Stefan Fritsch2-1/+7
2012-01-02Add hint in README.Debian about 403 error with mod_dav PUTStefan Fritsch2-0/+13
2012-01-022.2.16-6 has been releaseddebian/2.2.16-6Stefan Fritsch1-2/+2
2012-01-02Also add $named to the secondary-init-script exampleStefan Fritsch2-2/+8
2012-01-02release 2.2.16-5debian/2.2.16-5Stefan Fritsch1-2/+2
2012-01-02Add $named to the init script dependency header, since apache depends onStefan Fritsch2-3/+5
2012-01-02Update outdated description of /etc/apache2/magic in README.Debian.Stefan Fritsch2-1/+9
2012-01-02release 2.2.16-4debian/2.2.16-4Stefan Fritsch1-2/+2
2012-01-02Clarify comments in suexec-custom's default config fileStefan Fritsch2-2/+5
2012-01-02Increase the mod_reqtimeout default timeouts to avoid potential problemsStefan Fritsch2-4/+19
2012-01-02Remove bogus comment in conf.d/security about default in theStefan Fritsch2-1/+8
2012-01-02release 2.2.16-3debian/2.2.16-3Stefan Fritsch1-2/+2
2012-01-02CVE-2010-1623: mod_reqtimeout: Fix potential DoS by memory usageStefan Fritsch3-0/+65
generated by cgit v1.2.3 (git 2.39.1) at 2024-06-26 13:35:15 +0000